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I. Real Party in Interest (37 §4137(c)(l)(i)) 

The real party in interest in the present appeal is Microsoft Corporation, the assignee of 
the present application. 

II. Related Appeals and Interferences (37 C.F.R. §41.37(c)(l)(ii)) 

Appellants, appellants' legal representative, and/or the assignee of the present application 
are not aware of any appeals or interferences which may be related to, will directly affect, or be 
directly affected by or have a bearing on the Board's decision in the pending appeal. 

m. status of Claims (37 CF.R, §41,37(c)(l)(iu)) 

Claims 1-8, 10-1 8, 20-27 and 29-35 stand rejected by the Examiner. The rejection of 
claims 1-8, 10-18, 20-27 and 29-35 is being appealed. 

IV. Status of Amendroents (37 C-F-R. §41.37(c)(l)(iv)) 

No amendments were made after the Final Office Action dated October 7, 2005. 

V. Summary of Claimed Subject Matter (37 C.F,R. §4X.37(c)(l)(v)) 
A- Indepeudent Claini 1 

Independent claim 1 recites a method for facilitating integrity of an assembly employable 
by application programs during runtime, comprising: providing an assembly with an assembly 
manifest that contains a list of modules that make up the assembly; providing the assembly 
manifest with a hash of the contents of at least one module of the list of modules; providing the 
assembly manifest with a hash of a manifest of at least one other assembly that the assembly 
depends on; and comparing the hash retained in the assembly manifest with a hash of the at least 
one module obtained at runtime to identify whettier a runtime version of the at least one module 
is substantially siroilar to a version utilized at build time of the assembly. (iS^^ e.g., page 6, Ime 
1-page 7, line 16, page 14, lines 8-23) 

B. Independent Claim 10 

Independent claim 1 0 recites A method for facilitating integrity of assemblies employable 
by application programs during runtime, comprising; providing an assembly with an assembly 
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manifest that contains a list of referenced assemblies that the assembly depends on; providing the 
assembly manifest Vidth a hash of a manifest of at least one referenced assembly of the list of 
referenced assemblies; and analyzing the hash provided to the assembly manifest and a second 
hash of tlie manifest of the at least one referenced assembly computed at runtime to determine 
whether changes have been made to the at least one referenced assembly between runtime and at 
build time of the assembly, (See e.g., page 6, line 1-page 7, line 16, page 14, lines 8-23) 

C- Independ etit riaim i ft 

Independent claim 18 recites a computer readable medium having at least one computer 
executable component employable by an application program at runtime comprising: an 
assembly including an assembly manifest that contains a list of at least one referenced assembly 
that the assembly references, a first hash of a manifest of the at least one referenced assembly, a 
list of modules that make up the assembly and a hash of the contents of at least one module of 
the list of modules, the hash of the contents of the at least one module is utilized to control which 
versions of the modules are employed in coimection with the assembly at runtime. (See e.g., page 
6, line 1-page 7, line 16, page 12, lines 19-22^ page 14, lines 8-23) 

B. Independent Claim 22 

Independent claim 22 recites a computer readable medium having at least one computer 
executable component employable by an application program at runtime comprising; an 
assembly including an assembly manifest that contains a list of at least one referenced assembly 
that the assembly references and a hash of the contents of a manifest of the at least one 
referenced assembly, the hash is compared to a second hash produced at runtime to evaluate 
whether the at least one referenced assembly is a same version as the at least one referenced 
assembly utilized at build time of the assembly. (See e.g.^ page 6, line 1-page 7, line 16, page 14, 
lines 8-23) 

E. Independent Claim 23 

Independent claim 23 recites a system for facilitating integrity of assemblies employable 
by application programs at runtime, the system comprising: a first component that provides an 
assembly manifest for an assembly, the assembly manifest having a list of modules making up 
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the assembly and a list of at least one referenced assembly that the assembly references; and a 
second component that provides the assembly manifest with a hash of at least one module of the 
list of modules and a hash of a manifest of the at least one referenced assembly, the hash of the at 
least one module is compared with a hash of the at least one module generated at runtime to 
identiftr changes in the content of the at least one module. (See e.g., page 6, line 1-page 7, line 
16, page 14, lines 8-23) 

F. Independent Claim 27 

Independent claim 27 recites a system for fecilitating integrity of assemblies employable 
by application programs at runtime, the system comprising: a first component that provides an 
assembly manifest for an assembly, the assembly manifest having at least one referenced 
assemblys the at least one referenced assembly comprising a manifest; a second component that 
provides the assembly manifest with a hash of the manifest of the at least one referenced 
assembly; and a third component that compares the hash of the at least one referenced assembly 
in the assembly manifest with an actual hash value of the at least one referenced assembly to 
identify version changes. (See e.^., page 6, hne l-page 7, line 16, page 14, lines 8-23) 

Independent Claim 30 

Independent claim 30 recites a system for fecilitating integrity of an assembly 
employable by application programs at runtime, the system comprising: means for relating an 
assembly manifest having a list of at least one related assembly to an assembly (See e.g., page 6, 
lines 1-10), the at least one related assembly comprising a manifest; means for providing the 
assembly manifest with a hash of the manifest of the at least one related assembly (See e.g., page 
7, hnes 5-1 5); and means for evaluating integrity of the assembly by comparing the hash value 
with a second hash value computed at runtime (See e.g., page 6, hnes 26- page 7, line 4), 

The means for limitations described above are identified as limitations subject to the 
provisions of 35 U.S.C, §1 12 T[6. The structures corresponding to these limitations are identified 
with reference to the specification and drawings in the above-noted parentheticals. 
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VI. Grounds of Rejection to be Reviewed (37 C.F.R. §41.37(c)(l)(vi)) 



A, Whether claims 1-8, 10-18, 20-27 and 29-35 are vrapalentable under 35 U-S-C 
§103(a) over Renaud ei al (U.S. 5.958,051), in view of Shaw (U.S. App. 2002/0026634), and 
further in view of Graunke et al (U.S. 5,991 ,399) and Evans et al (U.S. 5,805,899). 



Vn. Argument (37 CF.R. §41.37(c)(l)(vii)) 



A- Rejection of Claims 1-8. 10-18. 20-27 and 29-35 Under 35 U.S.C. S103(a'> 

Claims 1-8, 10-18, 20-27 and 29-35 stand rejected under 35 U.S.C. § 103(a) as being 
unpatentable over Renaud al (U.S. 5,958,051), in view of Shaw (U.S. App. 2002/0026634), 
and further m view of Graunke et al (U.S. 5,991,399) and Evans et al (U.S. 5,805,899). It is 
respectfully requested that this rejection be withdrawn for at least the following reasons. The 
cited references, alone or in combination, fail to teach or suggest all limitations recited the 
subject claims. 



To reject claims in an application under §103, an examiner must 
establish a prima facie case of obviousness, A prima facie case of 
obviousness is established by a showing of three basic criteria. 
First, there must be some suggestion or motivation, either in the 
references themselves ox in the knowledge generally available to 
one of ordinary skill in the art, to modify the reference or to 
combine reference teachings. Second, there must be a reasonable 
expectation of success. Finally, the prior art reference (or 
references when combined) must teach or suggest all the claim 
limitations. See MPEP §706.020. The teaching or suggestion to 
make the claimed combination and the reasonable expectation of 
success must both be found in the prior art and not based on 
applicant's disclosure. See In re Vaeck 947 F-2d 488, 20 USPQ2d 
1438 (Fed. Cir. 1991) (emphasis added). 

The subject invention relates to validating that correct modules and assemblies are used 
for an application in a dynamically linked runtime environment An assembly can consist of 
modules and other assemblies. A manifest can contain a list of modules and/or assemblies. A 
hash of modules and manifests are used to verify correct versions and identify changes to 
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modules and assemblies. An assembly nuraifest that contains a hash of a manifest of a 
referenced assembly can eliminate or reduce the need to validate the contents of the modules in 
the referenced assembly. In particular, independent claim 1 (and similarly independent claims 
10, 1 8, 22y 23, 27 and 30) recites providing an assembly manifest with a hash of a manifest of 
at least one other assembly that the assembfy depends on. 

Contrary to assertions in the Office Action dated October 7, 2005, the combination of 
Renaud et at, Shaw, Graunke et al and Evans et al does not teach or suggest the 
aforementioned claimed features of appellants' invention. Renaud et al discloses a system for 
verifying the authenticity of data files by creating a signature file that contains a list of hashed 
identifiers for each file aad a hashed signat;3re of the signature file. TTie Examiner concedes that 
Renaud et al does not "disclose a manifest with a hash of a manifest of one referenced assembly 
of the list of referenced assemblies." (^See Office Action dated April 21, 2005, pg. 8). However, 
the Office Action incorrectly asserts that the site certificates of Renaud teach referenced 
assemblies. The site certificates merely provide a security layer between communicating servers. 
A site certificate identifies a server and servers employ these certificates to verify the 
authenticity of each server with which it is communicating. They do not specify referenced 
assemblies. Renaud et al teaches a manifest containing a list of modules. Thus, Renaud et al, 
does not teach or suggest that the manifest is provided with a hash of a manifest of the at least 
one referenced assembly as recited in the subject claims. 

Shaw fails to make up for the aforementioned deficiencies of Renaud et ai Shaw relates 
to a system for secm-e dowidoading of data. {See Abstract), Shaw discloses a table of hashes of 
segments of application code, (See Para 0034). Accordingly^ Shaw discloses a hash of a code 
segment or module, and does not teach a hash of a manifest of an assembly. As is known in the 
artj an assembly refers to a grouping of files (modules) necessary to perform a particular 
application, and modules are portion(s) of a computer program that arc created to cany out a 
particular function within the application, and can be utilized alone or combined with other 
modules in connection with enabling proper operation of the particular application, Shaw 
discloses hashing the files or modules rather than the list of files or manifest As discussed in the 
specification "hashing the manifest of the referenced assembly is sufficient because that manifest 
in turn includes hashes of all its constituent files." {See pg. 3 11. 1 8-20). Hashing the entire 
assembly would require more processing and decrease efficiency. 
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Evans et al fails to make up for the deficiencies of Renaud et al and Shaw, Evans et ah 
relates to providing versioning iiifonnatioii for a plurality of software objects. {See abstract). 
More particularly, Evans et al utilizes a hash value that is generated from the name of a version 
using a conventional ELF hashing function. {See Col. 1 1, 11. 46-48). The Office Action dated 
October 10, 2005 asserts that Evans et al teaches an assembly manifest referencing another 
assemble manifest However^ the cited art merely teaches a manifest file containing references 
to different modules and different versions of each module within the manifest file to account for 
version control- All of these references are to individual module sections within the single 
manifest file. ThereforCj Evans et al does not teach or suggest an assembly manifest referencing 
another assemble manifest let alone hashing a manifest of a referenced assembly. 

Moreover, Graunke et ah fails to make up for the deficiencies of Renaud et ah^ Shaw and 
Evans et al The OflSce Action attempts to reinforce the incorrect assertions that Renaud et aL 
discloses referenced assemblies and that Evans et al teaches an assembly manifest referencing 
another assembly manifest by also citing Graunke et al as teaching a hash of a referenced 
manifest. However, the cited art relates to a method for distributing private keys to user 
application programs to decrypt encrypted digital content. {See Abstract). The Examiner asserts 
that Graunke et aL teaches that "a list of references wherein each reference in turn contain 
signature information referring to other sections of a manifest". {See Office Action dated October 
7, 2005, pg. 5). However, as described by Graunke et al the manifest is a single file containing 
data about digital objects that may contain signatures relating to each digital object The 
references refer to sections within the single manifest file, not to another assembly manifest 
{See Fig. 3 and Col. 6 11. 53-56). Furdiermore, Graunke et al. teaches hashing the entire digital 
object, rather than the hash of a manifest or list of files of an assembly. 

Therefore, contrary to assertions in the Office Action, Renaud et aL does not disclose 
referenced assemblies, Evans et al does not teach an assembly manifest referencing another 
assembly manifest and Graunke et al does not teach a hash of a referenced assembly manifest 

In view of the foregoing, the combination of the cited art fails to teach or suggest 
providing an assembly manifest with a hash of a manifest of at least one other assembly that the 
assembly depends as in tlie claimed invention. Accordingly, it is readily apparent that Renaud et 
aL , Shaw, Evans et al and Graimke et aL , alone or in combination, do not malce obvious 
appellants' invention as recited in independent claims 1, 10, 1 8^, 22, 23:, 27 and 30 (and 
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dqjendent claims 2-S, 1 1-17, 20, 21, 24-26 and 29 which respectively depend there from). 
Reversal of this rejection is respectfully requested. 

B* Conclusion 

For at lea$t the above reasons, the claims currently under consideration are believed to be 
patentable over the cited references. Accordingly, it is respectfully requested that the rejections 
of claims 1-8, 10-18, 20-27 and 29-35 be reversed. 

If any additional fees are due in connection with this document, the Commissioner is 
authorized to charge those fees to Deposit Account No. 50-1063 [MSFTPn9US]. 



AMIN & TUROCY, LLP 

24**" Floor, National City Center 
1 900 East 9^ Street 
Telephone: (216) 696-8730 
Facsimile: (216)696-8731 
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Via. Claims Appendix (37 CF-R. §4137(c)(l)(viii)) 

1 . A method for facilitating integrity of an assembly employable by application programs 
during runtime, comprising: 

providing an assembly with an assembly manifest that contains a list of modules that 
make up the assembly; 

providing the assembly manifest with a hash of the contents of at least one modxile of the 
list of modules; 

providing the assembly manifest with a hash of a manifest of at least one other assembly 
that the assembly depends on; and 

comparing the hash retained in the assembly manifest with a hash of the at least one 
module obtained at runtime to identify whether a runtime version of the at least one module is 
substantially similar to a version utilized at build time of the assembly. 

2. The method of claim 1, providing the assembly manifest with the hash of the contents of 
at least one modxile of the list of modules comprises providing the assembly manifest with a hash 
of each module of the list of modules that constitutes the assembly, 

3. The method of claim 1, further comprising providing identity information in the assembly 
manifest, 

4. The method of claim 3 , the identity information comprising publisher information and 
version information. 

5. The method of claim 1 , further comprising providing a hash of the contents of the 
assembly at the end of the assembly. 

6. The method of claim 1, further comprising determining if the contents of the assembly 
have been modified by determining an actual hash of tlie contents of the at least one module of 
the list of modules and comparing the actual hash with the hash of the contents of the at least one 
module of the list of modules residing in the assembly manifest - 
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7. The method of claim 6, jEurther comprising determining if the publisher of the assembly is 
trustworthy if the assembly has been modified. 

8. The method of claim 7, determining if the publisher of the assembly is trustworthy if the 
assembly has been modified comprises checking version information and publisher name 
information residing in the assembly manifest. 

10. A method for facilitating integrity of assemblies employable by application programs 
during runtime, comprising: 

providing an assembly with an assembly manifest that contains a list of referenced 
assemblies that the assembly depends on; 

providing the assembly manifest with a hash of a manifest of at least one referenced 
assembly of the list of referenced assemblies; and 

analyzing the hash provided to the assembly manifest and a second hash of the manifest 
of the at least one referenced assembly computed at runtime to determme whether changes have 
been made to the at least one referenced assembly between runtime and at build time of the 
assembly. 

1 1 . The method of claim 10, providing the assembly manifest with the hash of the manifest 
of at least one referenced assembly of the list of referenced assemblies comprises providing the 
assembly manifest with a hash of each referenced assembly of the list of referenced assemblies. 

12. The method of claim 10, further comprising providing identity information in the 
assembly nnianifest. 

13. The method of claim 12, the identity information comprising publisher information and 
version information. 

14. The method of claim 1 0, further comprising providing a hash of the contents of the 
assembly at the end of the assembly. 
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15. The method of claim 10, further comprising determimng if the contents of the at least one 
referenced assembly have been modified by determimng an actual hash of the contents of the at 
least one referenced assembly of the list of referenced assemblies and comparing the actual hash 
with a hash of the contents of the at least one referenced assembly of the list of referenced 
assemblies residing in the assembly manifest, 

16. The method of claim 15, further comprising determining if the publisher of the at least 
one referenced assembly is trustworthy if the at least one referenced assembly has been 
modified. 

1 7. The method of claim 1 6, determining if the publisher of the at least one referenced 
assembly is trustworthy if the at least one referenced assembly has been modified comprises 
checking version information and publisher name information residing in the manifest of the at 
least one referenced assembly. 

18. A computer readable medium haviag at least one computer executable component 
employable by an application program at runtime comprising: 

an assembly including an assembly manifest that contains a list of at least one referenced 
assembly that the assembly references, a first hash of a manifest of the at least one referenced 
assembly, a list of modules tliat make up the assembly and a hash of the contents of at least one 
module of the list of modules, the hash of the contents of tlie at least one module is utilised to 
control which versions of the modules are employed in connection with the assembly at runtime. 

20- The computer readable mediimi of claim 1 8, the assembly manifest including identity 
information and version information. , 

21 . The computer readable medium of claim 1 8, the assembly being a dynamically linked 
library. 
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22. A computer readable medium having at least one computer executable component 
employable by an application program at runtime comprising: 

an assembly including an assembly manifest that contains a list of at least one referenced 
assembly that the assembly references and a hash of the contents of a manifest of the at least one 
referenced assembly, the hash is compared to a second hash produced at runtime to evaluate 
whether the at least one referenced assembly is a same version as the at least one referenced 
assembly utilized at build time of the assembly, 

23 . A system for facilitating integrity of assemblies employable by application programs at 
runtime, the system comprising: 

a first compoDent that provides an assembly manifest for an assembly, the assembly 
manifest having a list of modules making up the assembly and a list of at least one referenced 
assembly that the assembly references; and 

a second component that provides the assembly manifest with a hash of at least one 
module of the list of modules and a hash of a manifest of the at least one referenced assembly, 
the hash of the at least one module is compared with a hash of the at least one module generated 
at Tui^time to identify changes in the content of the at least one module. 

24. The system of claim 23, further comprising a third component adapted to compare the 
hash of said at least one module with an actual hash value of the at least one module. 

25. The system of claim 24, the assembly manifest including identity and version information 
and the third component adapted to determine if the assembly should be executed based on a 
review of the originator and version information^ if the hash of the at least one module in the 
assembly manifest and the actual hash value of the at least one module are different 

26. The system of claim 23, farther comprising a binding component adapted to provide 
binding policy information for determining a version of an assembly that an application program 
will run if another assembly having the same name resides on the system. 
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27. A system for facilitating integrity of assemblies employable by application programs at 
runtime, the system comprising: 

a first component that provides an assembly manifest for an assembly, the assembly 
manifest having at least one referenced assembly, the at least one referenced assembly 
comprising a manifest; 

a second component that provides the assembly manifest with a hash of the manifest of 
the at least one referenced assembly; and 

a third component that compares the hash of the at least one referenced assembly in the 
assembly manifest with an actual hash value of the at least one referenced assembly to identify 
version changes. 

29. The system of claim 27, further comprising a binding component adapted to provide the 
third component with binding policy information. 

30. A system for facilitating integrity of an assembly employable by application programs at 
runtime, the system comprising: 

means for relating an assembly manifest having a list of at least one related assembly to 
an assembly, the at least one related assembly comprising a manifest; 

means for providing the assembly manifest with a hash of the manifest of the at least one 
related assembly; and 

means for evaluating integrity of the assembly by comparing the hash value with a 
second hash value computed at runtime, 

3 1 . The system of claim 30, the at least one related assembly being a module. 

32. The system of claim 30, the at least one related assembly being a referenced assembly. 

33. The system of claim 30, further comprising means for comparing a hash value of the at 
least one related assembly in the assembly manifest to an actual hash value of the at least one 
related assembly. 
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34, The system of claim 30, further comprising means for establishing a binding policy, 

35. The system of claim 30, at least one of the assembly and the at least one related assembly 
being a dynamically linked library. 

IX. Evidence Appendix (37 C-F-R. §4137(c)(l)(ix)) 
None. 

X. Related Proceedings Appendix (37 C.F,R. §41 J7(c)(l)(x)) 
None. 
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